Trying to connect a 5505 with a dynamic address on 8.3(2) to a static IP'd asa (5510 on 8.2(1) with a DefaultL2LGroup and dynamic maps already created.
Can anyone tell me what I'm doing wrong?
Inside networks:
Local (5505) 192.168.100.0 /24
Remote (5510) 10.100.1.0 /24
Configuration on 5505
isakmp policy 20 authentication pre-share
isakmp policy 20 encryption 3des
isakmp policy 20 hash md5
isakmp policy 20 group 2
isakmp policy 20 lifetime 3600
isakmp enable outside
access-list 100 extended permit ip 192.168.100.0 255.255.255.0 10.100.1.0 255.255.255.0
nat (inside,any) 0 access-list 100
tunnel-group DefaultL2LGroup ipsec-attributes
pre-shared-key *****
crypto ipsec transform-set myset esp-3des esp-md5-hmac
crypto dynamic-map cisco 1 set transform-set myset
crypto map dyn-map 20 ipsec-isakmp dynamic cisco
crypto map dyn-map interface outside